<?php

if (!isset($_SERVER['PHP_AUTH_USER'])) {
	Header ("WWW-Authenticate: Basic realm=\"telephone book\"");
	Header ("HTTP/1.0 401 Unauthorized");
	exit();
}

else {
       /* if (!get_magic_quotes_gpc()) {
                $_SERVER['PHP_AUTH_USER'] = mysql_escape_string($_SERVER['PHP_AUTH_USER']);
                $_SERVER['PHP_AUTH_PW'] = mysql_escape_string($_SERVER['PHP_AUTH_PW']);
        }

        $query = "SELECT pass FROM userlist WHERE user='".$_SERVER['PHP_AUTH_USER']."'";
        $lst = @mysql_query($query,$db);

        if (!$lst)
        {
            Header ("WWW-Authenticate: Basic realm=\"Admin Page\"");
        Header ("HTTP/1.0 401 Unauthorized");
        exit();
        }

        if (mysql_num_rows($lst) == 0)
        {
           Header ("WWW-Authenticate: Basic realm=\"Admin Page\"");
           Header ("HTTP/1.0 401 Unauthorized");
           exit();
        }

        $pass =  @mysql_fetch_array($lst);
        if ($_SERVER['PHP_AUTH_PW']!= $pass['pass'])
        {
            Header ("WWW-Authenticate: Basic realm=\"Admin Page\"");
           Header ("HTTP/1.0 401 Unauthorized");
           exit();
        }*/
		$valid_user='tel_user';
		$valid_passwd='iostr4547XML';
		if (!  ( ($_SERVER['PHP_AUTH_PW']==$valid_passwd) && ($_SERVER['PHP_AUTH_USER']==$valid_user) ) ) {
			Header ("WWW-Authenticate: Basic realm=\"telephone book\"");
			Header ("HTTP/1.0 401 Unauthorized");
			exit();
        }
}




?>